Car Rental Portal /search.php file cross-site scripting vulnerability

Car Rental Portal is a rental car portal. Car Rental Portal suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the /search.php file parameter searchdata, which can be exploited by an attacker to execute arbitrary...

CVE-2024-10807

A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been rated as problematic. This issue affects some unknown processing of the file hms/doctor/search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely...

PHPGurukul Car Rental Portal 跨站脚本漏洞

Car Rental Portal is a rental car portal. Car Rental Portal suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the /search.php file parameter searchdata, which can be exploited by an attacker to execute arbitrary...

PT-2024-16476 · Unknown · Phpgurukul Car Rental Portal

Name of the Vulnerable Software and Affected Versions: PHPGurukul Car Rental Portal version 1.0 Description: A vulnerability was found in the processing of the file /search.php, where the manipulation of the searchdata argument leads to cross-site scripting. The attack may be initiated remotely...

CVE-2024-51075

A Reflected Cross Site Scripting XSS vulnerability was found in /odms/admin/user-search.php in PHPGurukul Online DJ Booking Management System v1.0, which allows remote attackers to execute arbitrary code via the searchdata parameter...

CVE-2024-51076

A Reflected Cross Site Scripting XSS vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter...

CVE-2024-51076

The CVE-2024-51076 issue affects PHPGurukul Online DJ Booking Management System v1.0. A Reflected Cross-Site Scripting (XSS) vulnerability exists in the /odms/admin/booking-search.php endpoint, exploitable via the searchdata parameter to cause arbitrary code execution in the context of a user ses...

PT-2024-34518 · Unknown · Phpgurukul Online Dj Booking Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Online DJ Booking Management System version 1.0 Description: A Reflected Cross Site Scripting XSS issue was found in the "/odms/admin/booking-search.php" API endpoint, allowing remote attackers to execute arbitrary code via the...

CVE-2024-51075

A Reflected Cross Site Scripting XSS vulnerability was found in /odms/admin/user-search.php in PHPGurukul Online DJ Booking Management System v1.0, which allows remote attackers to execute arbitrary code via the searchdata parameter...

CVE-2024-51076

A Reflected Cross Site Scripting XSS vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter...

PHPGurukul Online DJ Booking Management System 安全漏洞

PHPGurukul Online DJ Booking Management System is an online DJ booking management system from PHPGurukul. A security vulnerability exists in PHPGurukul Online DJ Booking Management System v1.0, which originates from a reflected cross-site scripting vulnerability in the searchdata parameter of the...

PHPGurukul Medical Card Generation System SQL注入漏洞

PHPGurukul Medical Card Generation System is a medical card generation system from PHPGurukul Inc. A SQL injection vulnerability exists in version 1.0 of the PHPGurukul Medical Card Generation System, which stems from the parameter searchdata in the file /admin/search-medicalcard.php that can lea...

CVE-2024-40484

A Reflected Cross Site Scripting XSS vulnerability was found in "/oahms/search.php" in PHPGurukul Old Age Home Management System v1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter...

PHPGurukul Old Age Home Management System 安全漏洞

PHPGurukul Old Age Home Management System is a nursing home management system from PHPGurukul, Inc. A security vulnerability exists in version v1.0 of the PHPGurukul Old Age Home Management System, which stems from a Reflected Cross-Site Scripting XSS vulnerability in the searchdata parameter of...

Zoo Management System SQL注入漏洞

Zoo Management System is a zoo management system by the individual developer Carlo Montero. It provides an online and automated platform for zoo organizations to manage their daily records. A SQL injection vulnerability exists in version 2.1 of the PHPGurukul Zoo Management System, which stems fr...

Zoo Management System SQL注入漏洞

Zoo Management System is a zoo management system by the individual developer Carlo Montero. It provides an online and automated platform for zoo organizations to manage their daily records. A SQL injection vulnerability exists in version 2.1 of the PHPGurukul Zoo Management System, which stems fr...

CVE-2024-30990

SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter...

CVE-2024-30990

SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter...

PT-2024-23712 · Unknown · Phpgurukul Complaint Management System

Name of the Vulnerable Software and Affected Versions: phpgurukul Client Management System version 1.1 Description: The issue allows an attacker to execute arbitrary SQL commands via the searchdata parameter in the "Invoices" page. This enables the attacker to manipulate the database, potentially...

Phpgurukul Client Management System SQL注入漏洞

Phpgurukul Client Management System is a client management system from the US-based PHPGurukul Inc. Phpgurukul Client Management System suffers from a SQL injection vulnerability that originates from a SQL injection contained in the Invoices page, which allows an attacker to execute arbitrary cod...